Comment by maqp

4 months ago

PGP stopped being the recommendation in 2004 when OTR became a thing with its forward secrecy. I really do not get the charm of repackaging PGP as a messenger, especially when it still has no forward secrecy: https://delta.chat/en/help#pfs

I mean, if you're not using Tor, your IP and thus identity will leak to the server anyway. So you should probably just use Signal that has double ratchet giving you forward secrecy and break-in key recovery.

Today, PGP's safest use-cases are digital signatures and airgapped comms. But, you'd probably do the latter with TFC as it has much better key/pt exfiltration guarantee.

1 comment

maqp

Reply
hkt  4 months ago

People have thought about how to do forward secrecy with PGP:

https://sequoia-pgp.org/talks/2018-08-moving-forward/moving-...

https://sequoia-pgp.gitlab.io/openpgp-dr/openpgp_dr/index.ht...

https://github.com/stealth/opmsg

https://github.com/autocrypt/autocrypt/issues/444

There's a lot going on in the space. It is more innovative than you're giving it credit for, especially around double ratchet. Not there yet, but there's a good reason why I don't mind: control. Multi client support (DeltaChat desktop, hallelujah) and the fact that email remains federation-first.

My identity definitely leaks to my server because I pay it's bill. Not only that, but most of my contacts run their own email or borrow it from me or someone else. Our data does not leave any EU countries apart from the UK. We have IM that doesn't involve any Americans.

Some might imagine we feel terribly smug about that right now :)